Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

125,465 advisories

Loading
APC Network Management Card 4 contains a path traversal vulnerability that allows unauthenticated... High Unreviewed
CVE-2024-58310 was published Dec 12, 2025
FoF Pretty Mail has a server-side template injection vulnerability High
CVE-2024-58303 was published for fof/pretty-mail (Composer) Dec 12, 2025
WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability... High Unreviewed
CVE-2025-34506 was published Dec 12, 2025
Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the... High Unreviewed
CVE-2024-58288 was published Dec 12, 2025
ElkArte Forum 1.1.9 contains a remote code execution vulnerability that allows authenticated... High Unreviewed
CVE-2024-58295 was published Dec 12, 2025
Akaunting 3.1.8 contains a server-side template injection vulnerability that allows authenticated... High Unreviewed
CVE-2024-58293 was published Dec 12, 2025
Siklu MultiHaul TG series devices before version 2.0.0 contain an unauthenticated vulnerability... High Unreviewed
CVE-2024-58300 was published Dec 12, 2025
reNgine 2.2.0 contains a command injection vulnerability in the nmap_cmd parameter of scan engine... High Unreviewed
CVE-2024-58287 was published Dec 12, 2025
FreePBX 16 contains an authenticated remote code execution vulnerability in the API module that... High Unreviewed
CVE-2024-58294 was published Dec 12, 2025
Next Vulnerable to Denial of Service with Server Components High
GHSA-mwv6-3258-q52c was published for next (npm) Dec 11, 2025
Ry0taK Credited to Ry0taK
Denial of Service Vulnerability in React Server Components High
CVE-2025-55184 was published for react-server-dom-parcel (npm) Dec 11, 2025
Ry0taK Credited to Ry0taK
In AzeoTech DAQFactory release 20.7 (Build 2555), the affected application is vulnerable to... High Unreviewed
CVE-2025-66587 was published Dec 11, 2025
In AzeoTech DAQFactory release 20.7 (Build 2555), a Stack-Based Buffer Overflow vulnerability can... High Unreviewed
CVE-2025-66584 was published Dec 11, 2025
In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Uninitialized Pointer... High Unreviewed
CVE-2025-66588 was published Dec 11, 2025
In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Resource Using Incompatible Type... High Unreviewed
CVE-2025-66586 was published Dec 11, 2025
In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Read vulnerability can be... High Unreviewed
CVE-2025-66589 was published Dec 11, 2025
In AzeoTech DAQFactory release 20.7 (Build 2555), a Use After Free vulnerability can be exploited... High Unreviewed
CVE-2025-66585 was published Dec 11, 2025
A vulnerability was identified in UTT 进取 512W up to 3.1.7.7-171114. Affected is the function... High Unreviewed
CVE-2025-14535 was published Dec 11, 2025
In WAVES_send_data_to_dsp of libaoc_waves.c, there is a possible out of bounds write due to a... High Unreviewed
CVE-2025-36925 was published Dec 11, 2025
In ss_DecodeLcsAssistDataReqMsg(void) of ss_LcsManagement.c, there is a possible out of bounds... High Unreviewed
CVE-2025-36924 was published Dec 11, 2025
In aocc_read of aoc_channel_dev.c, there is a possible double free due to improper locking. This... High Unreviewed
CVE-2025-36919 was published Dec 11, 2025
In GetTachyonCommand of tachyon_server_common.h, there is a possible out of bounds write due to a... High Unreviewed
CVE-2025-36927 was published Dec 11, 2025
In aoc_service_read_message of aoc_ipc_core.c, there is a possible out of bounds read due to... High Unreviewed
CVE-2025-36918 was published Dec 11, 2025
In GetHostAddress of gxp_buffer.h, there is a possible out of bounds write due to a missing... High Unreviewed
CVE-2025-36931 was published Dec 11, 2025
In NrmmDecoder::DecodeSORTransparentContext of cn_NrmmDecoder.cpp, there is a possible out of... High Unreviewed
CVE-2025-36923 was published Dec 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database